Description[edit | edit source]

Through access to sony's scedevnet area, once someone was able to obtain files that had symbolic information on them. those files were the internal ebootroms. This page describes what was used to obtain partial access to the plaintext of those roms.

ebootrom 2_I[edit | edit source]

2_I doesn't have a layer of encryption over it, besides pkgs and selfs layer. so you can just cosunpack everything in one go and decrypt it (provided you have access to the keys)

keys[edit | edit source]

keys were obtained through xoring and dexoring ebootrom mini_I and I_spu_to_6 (or to_8) until the plain section metadata was obtained (thanks to CTR trick)

mini_I[edit | edit source]

mini_I is just 2_I, but instead it has a layer of crypto (CTR) over it, and 39 aditional metldrs, the largest ever found, packed up in 39 individual blocks (which make for the size of the ebootrom). os is the same (4MB exact size) and each individual block has 0xA3CC6 block size (header included)

I_spu_to_6(8)[edit | edit source]

spu_to_X contains another giant table of lv1ldrs, packed together with lv1.self and hypr.bin.with-sig. it was obtained by xoring forged mini_I partial plaintext (just enough size) and mini_I encrypted, xored with spu_to_X cyphertext, thus obtaining partial plaintext.

New things[edit | edit source]

• lv1.self with 5252525209090909 reverse sbox
• hypr.bin.with-sig
• sc_iso individual seed changes / aim_spu_module (maybe others)

v e System Firmware Updates and Patches Retail / CEX 1.00 · 1.02 · 1.10 · 1.11 · 1.30 · 1.31 · 1.32 · 1.50 · 1.51 · 1.54 · 1.55 · 1.60 · 1.70 · 1.80 · 1.81 · 1.82 · 1.90 · 1.92 · 1.93 · 1.94 · 1.97 · 2.00 · 2.01 · 2.10 · 2.16 · 2.17 · 2.20 · 2.30 · 2.35 · 2.36 · 2.40 · 2.41 · 2.42 · 2.43 · 2.45 · 2.50 · 2.52 · 2.53 · 2.60 · 2.70 · 2.76 · 2.80 · 3.00 · 3.01 · 3.10 · 3.15 · 3.16 · 3.20 · 3.21 · 3.30 · 3.40 · 3.41-1 · 3.41-patch · 3.41-2 · 3.42 · 3.42-patch · 3.50 · 3.55 · 3.55-patch · 3.56-1 · 3.56-2 · 3.60 · 3.61 · 3.65 · 3.66 · 3.70 · 3.71 · 3.72 · 3.72-patch · 3.73 · 3.73-patch · 3.74 · 4.00 · 4.01 · 4.10 · 4.11 · 4.15 · 4.20 · 4.21 · 4.21-patch · 4.22 · 4.25 · 4.25-patch · 4.30 · 4.30-patch · 4.31 · 4.31-patch · 4.40 · 4.40-patch · 4.41 · 4.41-patch · 4.45 · 4.45-patch · 4.46 · 4.50 · 4.50-patch · 4.53 · 4.53-patch · 4.55 · 4.55-patch · 4.60 · 4.60-patch · 4.65 · 4.65-patch · 4.66 · 4.66-patch · 4.70 · 4.70-patch · 4.75 · 4.75-patch · 4.76 · 4.76-patch · 4.78 · 4.78-patch · 4.80 · 4.80-patch · 4.81 · 4.81-patch · 4.82 · 4.82-patch · 4.83 · 4.83-patch · 4.84 · 4.84-patch · 4.85 · 4.85-patch · 4.86 · 4.86-patch · 4.87 · 4.88 · 4.89 · 4.90 · 4.91 Shop / SEX 2.42 · 2.51 · 3.41 · 3.50 · 3.55 · 3.56-1 · 3.56-2 · 3.60 · 3.61 · 3.66 · 3.70 · 4.00 · 4.10 · 4.11 · 4.20 · 4.21 · 4.23 · 4.25 · 4.26 · 4.30 · 4.31 · 4.40 · 4.41 · 4.45 · 4.46 · 4.50 · 4.53 · 4.55 · 4.60 · 4.65 · 4.66 · 4.70 · 4.75 · 4.76 · 4.78 · 4.80 · 4.81 · 4.82 · 4.83 · 4.84 · 4.85 · 4.86 Debug / DEX 095.001 - DEX · 096.002 - DEX · 1.00 · 1.01 · 1.02 · 1.50 · 1.54 · 1.60 · 1.70 · 1.80 · 1.81 · 1.92 · 2.00 · 2.01 · 2.10 · 2.15 · 2.17 · 2.20 · 2.30 · 2.35 · 2.36 · 2.40 · 2.41 · 2.42 · 2.50 · 2.52 · 2.53 · 2.60 · 2.70 · 2.76 · 2.80 · 2.85 · 3.00 · 3.01 · 3.10 · 3.15 · 3.20 · 3.21 · 3.30 · 3.31 · 3.40 · 3.41 · 3.42 · 3.50 · 3.55 · 3.55-downgrader · 3.55-001d · 3.56 · 3.60 · 3.65 · 3.66 · 3.70 · 3.71 · 3.72 · 3.73 · 3.74 · 4.00 · 4.01 · 4.10 · 4.11 · 4.20 · 4.21 · 4.25 · 4.30 · 4.31 · 4.40 · 4.41 · 4.46 · 4.50 · 4.53 · 4.55 · 4.60 · 4.65 · 4.66 · 4.70 · 4.75 · 4.76 · 4.78 · 4.80 · 4.81 · 4.82 · 4.83 · 4.84 Tool / DECR 0.90 · 0.91-005 · 0.91-006 · 0.92 · 0.94 · 0.95 · 0.96 · 1.00 · 1.01 · 1.02-002 · 1.02-003 · 1.10 · 1.31 · 1.32 · 1.50 · 1.54 · 1.60 · 1.70 · 1.80 · 1.81 · 1.92 · 2.00 · 2.15 · 2.17 · 2.20 · 2.30 · 2.35 · 2.36 · 2.41 · 2.42 · 2.43 · 2.50 · 2.52 · 2.53 · 2.60 · 2.70 · 2.76 · 2.80 · 2.85 · 3.00 · 3.01 · 3.10 · 3.15 · 3.20 · 3.21 · 3.30 · 3.31 · 3.40 · 3.41 · 3.42 · 3.50 · 3.55 · 3.60 · 3.61 · 3.65 · 3.66 · 3.70 · 3.71 · 3.72 · 3.73 · 3.74 · 4.00 · 4.11 · 4.20 · 4.21 · 4.25 · 4.30 · 4.31 · 4.40 · 4.41 · 4.46 · 4.50 · 4.55 · 4.60 · 4.65 · 4.66 · 4.70 · 4.75 · 4.76 · 4.78 · 4.80 · 4.81 · 4.82 · 4.83 AVTool 1.00 · 1.30 Arcade / GEX 197.000 · 245.000 · 251.040 · 3.10 · 3.60 · 4.20 · 4.40 · 4.50 · 4.70 Eboot.rom Proto CEB 020.010 · 030.001 · 030.014 · 030.019.r003 · 030.020 · 030.020.r003 · 030.022 · 030.022.r004 · 040.001.r007 · 040.004.r009 · 040.005 · 040.005.r009 · 040.006 · 040.006.r009 · 040.012 · 040.012.r009 · 040.013 · 050.002 · 050.002.r010 · 050.003 · 050.003.r010 · 050.004 · 050.004.r010 · 050.008 · 050.008.r010 · 050.011 · 050.011.r010 · 050.012 · 050.012.r010 · 050.013 · EBOOTROM_E · 1250.bin · EBOOTROM_E.r009 · EBOOTROM_I.r009 Proto DEH 060.004 · 0.6.0.004.r010 · 0.6.0.012.r010 · 0.6.0.013.r010 · 0.8.0.004.r010 · 0.8.1.003.r010 · 0.8.2.006.r010 · 0.8.2.011.r010 · 0.8.3.002.r010 · 083.006.r010 · 083.007.r010 · 0.8.4r9460 · 0.8.4.001.r010 · 0.8.4.006.r010 · 0.8.5.007.r010 · Ebootrom mini I · EBOOTROM_2_I · EBOOTROM_2_E Proto DECR 0.85.009 · 0.85.010 · 0.85.015 · 091.006 · 093.002 · 100.002 - DECR Misc. Internal Ebootroms · TestBench Firmware Firmware Info Boot modes · Button Combos · Error Codes · Factory Service Mode · More System Information · Recovery Menu · Retail, Shop, Debug, Tool firmware differences · DEX Options · Features · XMB · Licensing · Update Types